CVE-2009-4324 in OpenSuse and Suse Products
Published on December 15, 2009

Use-after-free vulnerability in the Doc.media.newPlayer method in Multimedia.api in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted PDF file using ZLib compressed streams, as exploited in the wild in December 2009.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Known Exploited Vulnerability

This Adobe Acrobat and Reader Use-After-Free Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Use-after-free vulnerability in Adobe Acrobat and Reader allows remote attackers to execute code via a crafted PDF file.

The following remediation steps are recommended / required by June 22, 2022: Apply updates per vendor instructions.

Vulnerability Analysis

CVE-2009-4324 is exploitable with local system access, requires user interaction. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 1.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2009-4324 has been classified to as a Dangling pointer vulnerability or weakness.

Products Associated with CVE-2009-4324

You can be notified by stack.watch whenever vulnerabilities like CVE-2009-4324 are published in these products:

OpenSuse

Suse Linux Enterprise Debuginfo

Suse Linux Enterprise

What versions are vulnerable to CVE-2009-4324?

Each of the following must match for the vulnerability to exist.